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In the Claims: 



.2- Art Unit: 2135 



Please amend the claims as indicated below: 



1 . (currently amended) A method of implementing multicast security in a given multicast 
domain, the given multicast domain hnving one or metro network d cvico s; the method 
comprising: 

receiving multicast traffic that is encrypted with a global key, the global key being 
available to the given multicast domain and one or mote other multicast domains; 

decrypting the received multicast traffic with the global key to produce decrypted 
multicast traffic; 

encrypting the decrypted multicast traffic with a local key to produce local encrypted 
multicast traffic, the local key being available only to network devices in t he given multicast 
domai n, wherein the multicast domain includes a plurality of network devices, and wherein the 
multicast traffic includes a nluralitv of multicast messages : and 

forwarding the local encrypted multicast traffic to the plurality of o no or more network 
devices in the given multicast domain. 

2. (original) The method according to claim 1, further comprising: 

receiving a global key message that identifies the global key. 

3. (original) The method according to claim 1 wherein the local encrypted multicast traffic is 
forwarded to all of the network devices in the gi ven multicast domain. 

4. (original) The method according to claim 1 wherein the local encrypted multicast traffic is 
forwarded to a subset of the network devices in the given multicast domain, the subset of 
network devices being identified in a multicast message. 
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5, (cancelled ) 



3- 



6. (original) The method according to claim 1 wherein 
independent multicast domain. 

7. (original) The method according to claim 1 whereiji 
contiguous protocol independent multicast domains. 

8. (original) Tire method according to claim 1 wherek 
Multicast Sowce Discovery Protocol backbone. 



9. (currently amended) The method according to claitn 

determining whether the given multicast domain i 
in the received multicast traffic; 

in the event that the given multicast domain dont ains nn network devices interested in the 



received multicast traffic, s ending a terminate message to no longer forward the received 
multicast traffic to the given multicast domain. 

1 0. (original) The method according to claim 9, furthler comprising: 
receiving a global key message that identifies the global key. 



1 1 , (original) The method according to claim 9, firrfh|er 
determining, after having sent the terminate 

contains one or more network devices interested in 

sending a resume message to once again forward 

given multicast domain. 



12. (original) The method according to claim 9 wherein the given multicast domain is a protocol 
independent multicast domain. 



Art Unit: 2135 



the given multicast domain is a protocol 



the given multicast domain is a group of 



t the given multicast domain is part of a 



1 3 further comprising! 
- contains no network devices interested 



comprising: 
i^essage, that the given multicast domain 
received multicast traffic; and 
the received multicast traffic to the 



tike 
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13. (original) The method according to claim 9 wherein the given multicast domain is a group of 
contiguous protocol independent multicast domains. 

14. (original) The method according to claim 9 wherein the given multicast domain is part of a 
Multicast Source Discovery Protocol backbone. 

1 5. (currently amended) A method of implementing multicast security in a network, the method 
comprising: 

encrypting multicast traffic with a global key, the global key being available to a given 
multicast domain and one or more other multicast domains; 

forwarding the global encrypted multicast traffic to the given multicast domain; 

receiving the global encrypted multicast traffic at the given multicast domain; 

decrypting, at the given multicast domain, the global encrypted multicast traffic with 
the global key to produce decrypted multicast traffic; 

encrypting, at the given multicast domain the decrypted multicast traffic with a local 
key to produce local encrypted multicast traffic, the local key being available only to network 
devices in t he given multicast domain , wherein the multicast domain includes a plurality of 
network devices, and wherein the multicast traffic includes a plurality of multicast messages; and^ 

forwarding the local encrypted multicast traffic to the plurality of on e or more network 
devices in the given multicast domain- 

16. (original) The method according to claim 15, further comprising: 

receiving at the given multicast domain a global key message that identifies the global 

key. 

1 7. (original) The method according to claim 1 5 wherein the local encrypted multicast traffic is 
forwarded to alt of the network devices in the given multicast domain. 
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18. (original) The method according to claim 15 herein the local encrypted multicast traffic is 
forwarded to a subset of the network devices in the given multicast domain, the subset of 
network devices being identified in a multicast message. 



19. (cancelled) 

20. (original)The method according to claim 15 wherein the given multicast domain is a protocol 
independent multicast domain. 

21 . (original) The method according to claim 1 5 wherein the givem multicast domain is a group 
of contiguous protocol independent multicast domains. 

22. (original) The method according to claim 15 wherein the given multicast domain is part of a 
Multicast Source Discovery Protocol backbone. 

23. (previously presented) The method according to claim 15, farther comprising: 

constructing, in response to the received multicast traffic, an information message that 
alerts other multicast domains of the security capabilities of the given multicast domain; and 
forwarding the information message to at least one other multicast domain. 

24. (original) The method according to claim 23 wherein the information message is a part of a 
multicast protocol message. 

25. (original) The method according to claim 24 wherein one or more bits in one or more fields 
of the multicast protocol message are set to alert other multicast domains of the security 
capabilities of the given multicast domain. 

26. (currently amended) An apparatus for implementing multicast security in a given multicast 
domain, the given multicast domain having one or more network davicofl; the apparatus 
comprising: 
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a receiver for receiving multicast traffic that is encrypted with a global key, the global key 

being available to the given multicast domain and one or more other multicast domains; 

a decrypt** for decrypting the received multicast traffic with the global key to produce 

decrypted multicast traffic; 

an enctyptor for encrypting the decrypted multicast traffic with a local key to produce 
local encrypted multicast traffic, the local key being available only to network devices in t he 
given multicast Am« m wherein the multica st domain includes a plurality of network devices, 
and wherein the multicast traffic include s a plurality of multicast messages; 
and 

a traffic forwarder for forwarding the local encrypted multicast traffic to th ej>lu3rality_q f 
one or more network devices in the given multicast domain. 

27. (original) The apparatus according to claim 26, further comprising: 

a second receiver for receiving a global key message that identifies the global key. 

28. (original) The apparatus according to claim 26 wherein the local encrypted multicast traffic is 
forwarded to all of the network devices in the given multicast domain. 



29. (original) The apparatus accoitfing to claim 26 wherein the local encrypted multicast traffic is 
forwarded to a subset of the network devices in the given multicast domain, the subset of 
network devices being identified in a multicast message. 



30. (cancelled) 



3 1 . (original) The apparatus according to claim 26 wherein the given multicast domain is a 
protocol independent multicast domain. 

32. (original) The apparatus according to claim 26 wherein the given multicast domain is a group 
of contiguous protocol independent multicast domains. 
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33. (original) The method according to claim 26 wherein the given multicast domain is part of a 
Multicast Source Discovery Protocol backbone. 

34. (currently amended) A computer program product for implementing multicast security in a 
given multicast domain, fee given multicast domain having one or more network dovfofflj the 
computer program product comprising a computer usable medium having computer readable 
program code thereon, the computer program code including: 

program code for receiving multicast traffic that is encrypted with a global key, the global 
key being available to the given multicast domain and one or more other multicast domains; 

program code for decrypting the received multicast traffic with the global key to produce 

decrypted multicast traffic; 

program code for encrypting the decrypted multicast traffic with a local key to produce 
local encrypted multicast traffic, the local key being available only to network devices in the 
given multicast domai n, wherein the multicast domai n includes a plurality of network devices > 
and wherein the multicast traffic includ es f> plurality of multicast messages: and 

program code for forwarding the local encrypted multicast traffic to the plurality of the 
on e or mor e network devices in the given multicast domain. 

35. (original) The computer program product according to claim 34, further comprising: 
program code for receiving a message that identifies the global key. ■ Jt - 

36. (original) The computer program code to claim 34 wherein the local encrypted multicast 
traffic is forwarded to all of the network devices in the given multicast domain. 

37. (original) The computer program code according to claim 34 wherein the local encrypted 
multicast traffic is forwarded to a subset of the network devices in the given multicast domain, 
the subset of network devices being identified it) a multicast message. 



38. (cancelled) 



PAGE 1 0/18 * RCVD AT a/21/2006 10:23:20 AM [Eastern Standard Time] * SVR:USPT0-EFXRF-2/1 * DNIS:2738300 * CSID:$176419820 s DURATION (mm-ss):05-18 



03/.21/2096 10:25 6176419620 



DAVE DAGG 



PAGE 



Serial No. 09/474,203 -8- ArtUnit:2135 

39. (original) The computer program code according to claim 34 wherein the given multicast 
domain is a protocol independent multicast domain. 

40. (original) The computer program code according to claim 34 wherein the given multicast 
domain is a group of contiguous protocol independent multicast domains. 

41 . (original) The method according to claim 34 wherein the given multicast domain is part of a 
Multicast Source Discovery Protocol backbone. 

42. (currently amended) An apparatus for implementing multicast security in a network, the 
apparatus comprising: 

means for encrypting multicast traffic with a global key, the global key being available to 
a given multicast domain and one or more other multicast domains; 

means for forwarding the global encrypted multicast traffic to the given multicast domain; 

means for receiving the global encrypted multicast traffic at the given multicast domain; 

means for decrypting, at the given multicast domain, the global encrypted multicast traffic 
with the global key to produce decrypted multicast traffic; 

means for encrypting, at the given multicast domain, the decrypted multicast traffic with a 
local key to produce local encrypted multicast traffic, the local key being available only to 
network devices in t he given multicast domain , wherein the mu ftjesff domain includes a nluralitv 
of network devices, and wherein the multicast traffic includes a mu lticast messages: and 

means for forwarding the local encrypted multicast traffic to the nluralitv of one or more 
network devices in the given multicast domain. 

43. (original) The apparatus according to claim 42, further comprising: 

means for receiving at the given multicast domain a global key message that identifies the global 
key. 

44. (original) The apparatus according to claim 42 wherein the local encrypted multicast traffic is 
forwarded to all of the network devices in the given multicast domain. 
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45. (original) The apparatus according to claim. 42 wherein the local encrypted multicast traffic is 
forwarded to a subset of the network devices in the given multicast domain, the subset of 
network devices being identified m a multicast message. 

46. (cancelled) 

47. (original) The apparatus according to claim 42 wherein the given multicast domain is a 
protocol independent multicast domain. 

48. (original) The apparatus according to claim 42 wherein the given multicast domain is a group 
of conti guous protocol independent multicast domains* 

49. (original) The method according to claim 42 wherein the given multicast domain is part of a 
Multicast Source Discovery Protocol backbone. 
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